Last updated: January 19, 2025
PasteLint ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your information when you use our Chrome extension (the "Extension"), and your rights with respect to that data.
PasteLint is a Chrome Extension that provides context-aware paste protection to prevent accidental data leaks and security risks. This privacy policy explains how we handle your data in compliance with Chrome Web Store requirements.
PasteLint does NOT collect, store, or transmit any personal data that identifies you, such as:
- Names, email addresses, or account credentials
- Browsing history or search queries
- Personal information from web forms
We do NOT collect, store, or transmit any clipboard content.
- Clipboard content is analyzed locally in your browser's memory only
- Clipboard content is never stored on disk or in browser storage
- Clipboard content is never transmitted over the network
- Clipboard content is never shared with third parties
PasteLint does NOT collect usage data such as:
- Analytics or telemetry
- Error logs or crash reports
- Device or browser information
- IP addresses or network data
- Timestamps or usage patterns
PasteLint only stores the following data locally in your browser using Chrome's chrome.storage.local API (this data never leaves your device):
-
Allowlist: Domain names of websites where you've chosen to always allow pastes
- Example:
{ "example.com": true } - This is stored locally and never synced or transmitted
- Example:
-
Profile Preference: Your selected protection profile (Development Mode, Production Mode, or Crypto Mode)
- Stored as a single preference value
- Defaults to Production Mode
-
Statistics (optional): Counters for protected and blocked pastes
- Stored locally for display in the extension popup
- Never transmitted or shared
Since PasteLint does not collect personal data or clipboard content, we have no data to use. The locally stored data (allowlist, profile preference, statistics) is used solely for:
- Providing functionality: Storing your preferences to enable the extension's core features
- Personalization: Remembering your allowlist choices and profile settings
- Display purposes: Showing statistics in the extension popup
All stored data remains on your device and is never sent to any server.
PasteLint requires the following permissions, each of which is strictly necessary for the extension's functionality:
- Purpose: Save your allowlist preferences and profile settings locally
- Data: Only domain names and preference settings (no clipboard content)
- Storage Location: Local browser storage (not synced)
- Limited Use: This permission is used only to store user preferences locally. No data is transmitted or shared.
- Purpose: Access the current tab to analyze paste events and field context
- Scope: Only the active tab when you paste content
- Data Access: Field metadata (type, name, id, placeholder) - not form values or clipboard content
- Limited Use: This permission is used only to analyze field context for risk assessment. No form data or clipboard content is stored or transmitted.
- Purpose: PasteLint uses content scripts that run on all websites (
<all_urls>) to intercept paste events - Scope: Content scripts only access field metadata (type, name, id, placeholder) to determine context
- Data Access: No form values, clipboard content, or personal data is accessed or stored
- Limited Use: Content scripts are used solely for paste event interception and field context analysis. No data collection or transmission occurs.
All permissions are used in strict accordance with Chrome Web Store Limited Use requirements.
- When you paste content into a web form, PasteLint intercepts the paste event
- It analyzes the clipboard content in memory (not stored)
- It analyzes the field context (type, label, domain)
- It evaluates the risk level locally
- If there's a potential risk, it shows a warning toast
- You can choose to allow, always allow on the site, or cancel
All analysis happens locally in your browser - no data leaves your device.
We do not share, sell, or transmit any data to third parties.
- No data is shared with service providers
- No data is shared with third parties
- No data is sold to advertising platforms, data brokers, or resellers
- No aggregated or de-identified data is shared
- All data remains on your device
Since PasteLint does not collect personal data or clipboard content, there is no data to share or disclose.
PasteLint does not use any third-party services, analytics, or tracking tools. The extension operates entirely locally without any external dependencies or network connections.
PasteLint makes zero network calls:
- No analytics or telemetry
- No data transmission
- No external API calls
- No tracking
- No server communication
By installing and using PasteLint, you consent to the data practices described in this policy. You have full control over your data:
- View stored data: Check your allowlist in the extension popup
- Delete data: Remove domains from allowlist or uninstall the extension
- Control permissions: You can revoke permissions via Chrome's extension settings
- Uninstall: You can uninstall the extension at any time, which will delete all locally stored data
Since we don't collect personal data or clipboard content, there's no data to request access to or deletion of beyond what's stored locally in your browser.
- Locally stored data (allowlist, preferences, statistics) is retained until you:
- Remove domains from the allowlist
- Change your profile preference
- Uninstall the extension (which deletes all data)
- All data is stored locally using Chrome's secure
chrome.storage.localAPI - No data is transmitted over networks, eliminating transmission risks
- Clipboard content is analyzed in memory only and never persisted
- The extension uses Content Security Policy (CSP) to prevent code injection
- No external connections are made, reducing attack surface
Our Extension is not intended for children under the age of 13. We do not knowingly collect personal data from children under 13. Since PasteLint does not collect any personal data or clipboard content, this is not applicable. If we learn that a child under 13 has provided us personal information, we will take steps to delete it immediately.
We may update this policy from time to time. If we make material changes, we will:
- Update the "Last Updated" date at the top of this policy
- Notify users through the extension popup or Chrome Web Store listing
- For significant changes, provide prominent notice
Your continued use of the Extension following changes indicates your acceptance of the updated policy.
If you have questions about this Privacy Policy or our practices, please contact us at:
- Email: hello@afrasiyabhaider.dev
This privacy policy complies with:
- GDPR (General Data Protection Regulation) - We do not process personal data, and all local storage is user-controlled
- CCPA (California Consumer Privacy Act) - We do not sell or share personal information
- Chrome Web Store Privacy Requirements - All required disclosures are included, permissions are justified, and Limited Use requirements are met
In short: PasteLint is a privacy-first extension that analyzes clipboard content locally and never stores or transmits any data. Your clipboard content never leaves your browser. We do not collect, use, share, or sell any personal data or clipboard content.